Further Information

ESB-2003.0287 -- Core Security Technologies Advisory -- Snort TCP Stream Reassembly Integer Overflow Vulnerability - (16/04/2003)

ESB-2003.0286 -- SGI Security Advisory -- Multiple Vulnerabilities in BSD LPR Subsystem - (15/04/2003)

ESB-2003.0282 -- SGI Security Advisory -- ToolTalk Vulnerabilities Update - (14/04/2003)

ESB-2003.0275 -- SGI Security Advisory -- xfsdump creates files insecurely - (11/04/2003)

ESB-2003.0266 -- SGI Security Advisory -- Samba Security Vulnerability - (10/04/2003)

ESB-2003.0265 -- SGI Security Advisory -- Multiple Vulnerabilities in libc RPC functions - (09/04/2003)

AL-2003.06 -- Security bugfix for Samba - A vulnerability has been discovered in Samba, that if exploited correctly, leads to an anonymous user gaining root access on a Samba serving system. All versions of Samba up to and including Samba 2.2.8 are vulnerable. An active exploit of the bug has been reported in the wild. (08/04/2003)

ESB-2003.0244 -- The Apache Software Foundation Announcement -- Apache 2.0.45 Released - (03/04/2003)

ESB-2003.0243 -- SGI Security Advisory -- Sendmail parseaddr security vulnerability - (03/04/2003)

ESB-2003.0227 -- Sendmail Consortium Announcement -- sendmail 8.12.9 available - (31/03/2003)

AL-2003.05 -- Buffer Overflow in Sendmail - There is a vulnerability in sendmail that can be exploited to cause a denial-of-service condition and could allow a remote attacker to execute arbitrary code with the privileges of the sendmail daemon, typically root. (30/03/2003)

ESB-2003.0206 -- SGI Security Advisory 20030304-01-P -- Multiple Vulnerabilities and Enhancements in ftpd on IRIX - (25/03/2003)

ESB-2003.0200 -- Core Security Technologies Advisory -- Vulnerability in Mutt Mail User Agent - (21/03/2003)

ESB-2003.0191 -- MIT krb5 Security Advisory 2003-003 -- Faulty length checks in xdrmem_getbytes - (20/03/2003)

ESB-2003.0190 -- SGI Security Advisory -- Java Security Fixes - (20/03/2003)

ESB-2003.0189 -- SGI Security Advisory 20030302-01-I -- SMB/CIFS Security Vulnerability in Samba - (20/03/2003)

AU-2003.006 -- AusCERT Update - Update to Recent Samba and Microsoft WebDAV Security Bulletins - This AusCERT Update is to provide you with additional information regarding two recent security bulletins; ESB-2003.0171 "Samba" and AL-2003.02 "Microsoft IIS WebDAV Remote Compromise Vulnerability". Both bulletins discuss vulnerabilities with impacts of root/Administrator compromise. (19/03/2003)

ESB-2003.0154 -- Macromedia Product Security Bulletin MPSB03-03 -- Security Patch for Macromedia Flash Player - (06/03/2003)

ESB-2003.0145 -- iDEFENSE Security Advisory 03.04.03 -- Locally Exploitable Buffer Overflow in file(1) - (05/03/2003)

AU-2003.004 -- AusCERT Update - Possible False Positive Attack Signatures in Sendmail Error Logs - (05/03/2003)

AU-2003.003 -- AusCERT Update - Sendmail Proof of Concept Code Available - New Version of BIND - (05/03/2003)

ESB-2003.0136 -- SGI Security Advisory -- Mail Header Buffer Overflow In Sendmail - (04/03/2003)

ESB-2003.0134 -- CERT Advisory CA-2003-07 -- Remote Buffer Overflow in Sendmail - (04/03/2003)

ESB-2003.0135 -- Sendmail Consortium Announcement -- sendmail 8.12.8 available - Sendmail, Inc., and the Sendmail Consortium announce the availability of sendmail 8.12.8. It contains a fix for a critical security problem discovered by Mark Dowd of ISS X-Force. (04/03/2003)

AA-2003.01 -- Sendmail Vulnerability - AusCERT has received information that a vulnerability exists in all versions of sendmail, an open source SMTP mail server. This vulnerability may allow remote users to gain root privileges. (04/03/2003)

ESB-2003.0132 -- iDEFENSE Security Advisory 02.27.03 -- TCPDUMP Denial of Service Vulnerability in ISAKMP Packet Parsing - (28/02/2003)

ESB-2003.0125 -- SGI Security Advisory -- Buffer Overrun Vulnerability in /sbin/ps - (27/02/2003)

ESB-2003.0111 -- OpenSSL Security Advisory -- Timing-based attacks on SSL/TLS with CBC encryption - (21/02/2003)

ESB-2003.0108 -- CERT Advisory CA-2003-05 -- Multiple Vulnerabilities in Oracle Servers - (20/02/2003)

ESB-2003.0100 -- NGSSoftware Insight Security Research Advisory NISR16022003d -- Oracle9i Application Server Format String Vulnerability - (19/02/2003)

ESB-2003.0099 -- NGSSoftware Insight Security Research Advisories NISR16022003a, NISR16022003b, NISR16022003c and NISR16022003e -- Multiple Oracle Database Vulnerabilities - (18/02/2003)

ESB-2003.0098 -- PHP Security Advisory -- CGI vulnerability in PHP version 4.3.0 - (18/02/2003)

ESB-2003.0083 -- SGI Security Advisory -- IP denial-of-service fixes and tunings - (13/02/2003)

ESB-2003.0044 -- SGI Security Advisory -- Updated patches for SGI Advisories 20020903-02-P and 20021103-01-P - (23/01/2003)

ESB-2003.0042 -- SGI Security Advisory -- IRIX ToolTalk RPC Server Format String Vulnerability update - (22/01/2003)


Previous  1, 2, 3 ... 103, 104, 105, 106, 107  Next denotes AusCERT member only content.